Brinztech Alert: The Alleged Database of JobsGo is Leaked

Dark Web News Analysis

The dark web news reports a significant data breach involving JobsGO (jobsgo.vn), a prominent online recruitment platform in Vietnam. On January 8, 2026, a threat actor identified as ShellForce claimed responsibility for the breach and shared the dataset on a hacker forum.

The compromised database contains approximately 2,325,285 records. The leaked data is highly detailed, encompassing both personal and professional attributes: Full Names, Genders, Dates of Birth, Physical Addresses, Job Titles, Company Names, Education Details, and significantly, Raw CV Files. This comprehensive exposure affects both job seekers and the companies listed in their employment history.

Key Cybersecurity Insights

Breaches of recruitment platforms provide cybercriminals with a “Who’s Who” of the corporate world, enabling highly sophisticated social engineering attacks:

• “Boss Fraud” & Spear Phishing:

By knowing a victim’s Current Job Title and Company, attackers can craft convincing emails. For example, an employee might receive an email seemingly from their CEO (whose name is also public) referencing a specific project or department found in the CV, asking for urgent wire transfers or sensitive files.

• Employment Scams: Job seekers are vulnerable. Attackers can use the leaked CVs to contact victims via WhatsApp or Zalo, offering fake “High-Paying Remote Jobs.” They use the victim’s real work history to build trust before demanding “onboarding fees” or stealing banking details.
• Corporate Espionage: The dataset serves as unintended “Competitive Intelligence.” Rival firms or malicious actors can analyze the data to see which key employees at specific companies are actively looking for new jobs, potentially poaching talent or identifying internal dissatisfaction.
• Identity Theft: The combination of Date of Birth, Full Name, and Physical Address provides the foundational data needed to register for fraudulent loans or services in the victim’s name.

Mitigation Strategies

To protect your workforce and personal identity, the following strategies are recommended:

• Employee Awareness: Companies should warn their staff—especially those in HR and Finance—that their professional details may be public. Verify any unusual internal request via a secondary channel (e.g., call the sender).
• CV Monitoring: Individuals who have used JobsGO should be vigilant for scam calls offering “too good to be true” job opportunities.
• Password Hygiene: If you used your corporate email address to register on JobsGO, immediately change your email password and ensure it is not reused on other enterprise systems.
• Credential Monitoring: Corporate security teams should scan the leaked dataset (once available in threat intel feeds) to identify which of their employees’ credentials or data were exposed.

Secure Your Business with Brinztech — Global Cybersecurity Solutions

Brinztech protects organizations worldwide from evolving cyber threats. Whether you’re a startup or a global enterprise, our expert solutions keep your digital assets safe and your operations running smoothly.

Questions or Feedback?

For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com